General
-
Target
db0c57e04827103e77b787a6978f93d31af2dda32b06c13b4777ba5e457efc8e.exe
-
Size
105KB
-
Sample
250204-vrvyjavqaj
-
MD5
6d0fd47d6951da4d05c98ec0a7eddbae
-
SHA1
337c510bf36cb60b81cd11abf0a105a28de9e477
-
SHA256
db0c57e04827103e77b787a6978f93d31af2dda32b06c13b4777ba5e457efc8e
-
SHA512
afd84b34b70656c558db4337085b4eda2f8a12c65716c0136622566b5fa1c12abbbb88aa6fbc5af5df1a0ec3e855e56477c0a9d37a9743a5ed2041b71594790c
-
SSDEEP
1536:JxqjQ+P04wsmJCEr2jEYjr7glako4ArJXoes5DWrC6JEqnQ:sr85CErhYjrIakSJXoelrllnQ
Malware Config
Targets
-
-
Target
db0c57e04827103e77b787a6978f93d31af2dda32b06c13b4777ba5e457efc8e.exe
-
Size
105KB
-
MD5
6d0fd47d6951da4d05c98ec0a7eddbae
-
SHA1
337c510bf36cb60b81cd11abf0a105a28de9e477
-
SHA256
db0c57e04827103e77b787a6978f93d31af2dda32b06c13b4777ba5e457efc8e
-
SHA512
afd84b34b70656c558db4337085b4eda2f8a12c65716c0136622566b5fa1c12abbbb88aa6fbc5af5df1a0ec3e855e56477c0a9d37a9743a5ed2041b71594790c
-
SSDEEP
1536:JxqjQ+P04wsmJCEr2jEYjr7glako4ArJXoes5DWrC6JEqnQ:sr85CErhYjrIakSJXoelrllnQ
Score10/10-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Neshta family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-